Description Session Fixation vulnerability in in function login in class.auth.php in osTicket through 1.16.2. Remediation References CVE-2022-31888 Related Vulnerabilities PHP Improper Input Validation Vulnerability (CVE-2015-4148) WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner 'mosmsg' and 'option' Parameters Cross-Site Scripting Vulnerabilities (3.0) phpBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2002-2346) PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-8387) WebLogic CVE-2016-5531 Vulnerability (CVE-2016-5531) Severity High Classification CVE-2022-31888 CWE-384 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities